Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/PAjYuTHx8TtmaO7wYzGuANJyWdQ.roa
File: PAjYuTHx8TtmaO7wYzGuANJyWdQ.roa (raw, json)
Hash identifier: HoDGhl+NSp5nqHz7B+P2A9Bou0TJ0EaTNoIGwe1BQFg=
Subject key identifier: 3C:08:D8:B9:31:F1:F1:3B:66:68:EE:F0:63:31:AE:00:D2:72:59:D4
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE987A0584C039B62F0079F45B5DA7
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/PAjYuTHx8TtmaO7wYzGuANJyWdQ.roa
Signing time: Mon 02 Jan 2023 09:44:51 +0000
ROA not before: Mon 02 Jan 2023 09:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 85.237.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:98:7a:05:84:c0:39:b6:2f:00:79:f4:5b:5d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c08d8b931f1f13b6668eef06331ae00d27259d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:db:54:9b:55:94:b8:f2:67:6b:23:dc:7e:e4:
af:67:5f:f9:b4:d6:bc:d0:6b:5b:a3:22:bb:7d:bd:
1b:6d:37:7c:fa:4b:1f:74:7b:c0:76:06:9e:f1:c9:
33:a9:97:98:b4:1f:93:f0:77:6e:67:57:5f:9c:64:
d6:d7:2d:ee:c8:e9:8e:89:c0:6c:0e:2f:fb:b7:b7:
cc:83:bc:9f:a6:bb:8e:ce:e3:77:8f:3e:84:e7:74:
1d:c4:42:0d:88:6d:61:f6:9e:41:f7:13:9a:e9:75:
70:65:e1:4c:a0:b9:c3:a9:68:ba:14:3b:04:8d:54:
4f:2d:3c:3b:88:22:95:e3:04:43:20:d6:5a:c7:11:
16:5b:8e:c2:c4:76:e7:3f:8e:81:fa:19:9c:fc:06:
f0:1f:3d:54:8a:01:2e:6e:d6:98:c5:6f:6b:e2:05:
d2:35:7b:c0:2f:55:09:56:d3:55:b3:2f:0d:69:46:
5d:2b:f3:69:82:03:7f:8c:4d:20:9e:95:c2:d1:c4:
ca:2d:40:c7:eb:54:75:9d:da:66:39:c8:f5:de:19:
ba:28:80:b8:8c:7b:6c:9c:94:c6:5f:ab:ec:95:b9:
dd:e5:12:59:29:f1:02:c5:d3:35:b3:d8:4c:6f:15:
54:90:99:a1:bb:03:44:77:1d:3c:4e:22:de:bb:96:
5d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:08:D8:B9:31:F1:F1:3B:66:68:EE:F0:63:31:AE:00:D2:72:59:D4
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/PAjYuTHx8TtmaO7wYzGuANJyWdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.218.0/24
Signature Algorithm: sha256WithRSAEncryption
45:e4:42:83:ae:33:34:4e:93:68:ae:d9:a5:ba:0d:4a:8f:5d:
eb:dd:94:b7:59:58:c0:80:dc:18:9f:71:8a:d6:55:f2:bd:97:
52:ed:c6:e6:2e:a2:22:44:ad:fd:59:66:21:30:ad:ac:46:e4:
c8:e7:2f:4e:91:e1:74:71:96:0a:be:38:ef:c4:cf:59:6e:f2:
bb:84:27:db:69:87:99:1f:a2:dc:80:96:e6:62:fd:83:d5:5c:
28:e8:80:57:84:69:ff:ec:d8:97:ca:9d:95:3d:e7:dc:df:1a:
bd:25:79:ba:42:3d:74:dc:8f:2c:b1:cb:a1:ae:52:30:a9:8a:
bc:05:ef:08:34:7e:c2:60:82:59:f6:67:5b:47:53:11:e9:79:
3d:ae:35:83:b5:c8:5d:20:e0:54:3e:f8:3a:82:63:c7:4d:f8:
33:6a:e5:31:68:b3:91:50:9d:9c:7c:73:c5:bf:ba:fb:fd:ee:
4f:fb:eb:50:ed:14:06:32:e7:07:fd:ef:bc:1e:a4:bc:df:dd:
53:bb:bb:bd:d1:b2:40:e1:5c:19:95:82:cb:c0:90:dd:eb:70:
e7:17:db:3f:a3:9e:ce:3f:89:db:85:1e:6c:18:ee:07:e1:8c:
bb:c8:a6:86:28:70:3b:07:6f:41:00:c1:7f:a1:b0:3f:7a:00:
a0:26:37:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org